Criminals have been targeting organizations that run Exchange hoping to breach ones that haven’t patched the latest bugs, says ESET. Microsoft Four critical zero-day vulnerabilities in Microsoft Exchange have paved the way for attackers to take over accessible Exchange servers even without knowing the credentials. On March 2, Microsoft released a series of updates to patch the flaws. But cybercriminals have been rushing to hack affected organizations that haven’t yet applied the patches. Plus, many…

A threat actor has hacked into the social media account of South Korea’s biggest boy band, BTS, also known as the Bangtan Boys. Since their debut in 2013, BTS have taken the music world by storm, winning major accolades at the American Music Awards, MTV Video Music Awards, Billboard Music Awards, and South Korea’s Melon Music Awards, and becoming the first K-pop band to top the US album charts. The seven-member band joined TikTok in…

Apiiro creates user profiles and analyzes a company’s code base to spot high-risk changes. A cybersecurity expert wants to make it easier for software developers and security architects to work together. CEO and co-founder Idan Plotnik used what he learned about user and entity behavior analysis by building his previous company to build his latest one: Apiiro. Plotnik sold his previous cybersecurity company Aorato to Microsoft for $200 million a few years ago. The platform…

A convicted fraudster from Santa Monica, California, who conned the women he dated into investing in his fake businesses has been handed a custodial sentence.  Antonio Mariot Wilson, also known as Dr. Tony Mariot and Brice Carrington, impersonated a Bible scholar and a Navy SEAL in the execution of his romance scams. Wilson lured his targets using online dating sites, including the networking dating app Bumble Bizz. Between May 2015 and October 2017, the 57-year-old tricked four…

Startup uses NLP and AI to make software security reviews less painful Length: 6:40 | Mar 10, 2021 Apiiro creates user profiles and analyzes a company’s code base to spot high-risk changes and replace manual risk assessments with on-the-fly analysis. Source link

More than half of Americans believe that their companies could have done more to increase cybersecurity during the global health pandemic, according to a new survey. In February, tech company Lynx Software asked 1,000 Americans employed during the pandemic about their employer’s approach to cybersecurity since the outbreak of COVID-19. Of those surveyed, 51% said that their companies have not been taking cybersecurity seriously. Nearly half (48%) said that they were not aware of their company’s implementing any…

Cyber-attacks have become increasingly sophisticated in the past year, with the SolarWinds incident unlikely to be an isolated event going forward, according to VMware Security Business Unit’s 2021 Global Cybersecurity Outlook report. The researchers noted that, in addition to widening the attack surface, the shift to digital following the COVID-19 pandemic has allowed malicious actors the time, capital and opportunity to industrialize, leading to advancements in their operations. Nearly 40% of the 180 IR, cybersecurity…